CVE-2022-48671

cgroup: Add missing cpus_read_lock() to cgroup_attach_task_all()

Severity Score

5.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved:

cgroup: Add missing cpus_read_lock() to cgroup_attach_task_all()

syzbot is hitting percpu_rwsem_assert_held(&cpu_hotplug_lock) warning at
cpuset_attach() [1], for commit 4f7e7236435ca0ab ("cgroup: Fix
threadgroup_rwsem <-> cpus_read_lock() deadlock") missed that
cpuset_attach() is also called from cgroup_attach_task_all().
Add cpus_read_lock() like what cgroup_procs_write_start() does.

En el kernel de Linux, se resolvió la siguiente vulnerabilidad: cgroup: agregue cpus_read_lock() faltante a cgroup_attach_task_all() syzbot está presionando la advertencia percpu_rwsem_assert_held(&cpu_hotplug_lock) en cpuset_attach() [1], para el commit 4f7e7236435ca0ab ("cgroup: Fix threadgroup_rwsem <- > cpus_read_lock() deadlock") se perdió que cpuset_attach() también se llama desde cgroup_attach_task_all(). Agregue cpus_read_lock() como lo hace cgroup_procs_write_start().

*Credits: N/A

CVSS Scores

NISTv3.1 5.5

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-02-25 CVE Reserved
2024-05-03 CVE Published
2024-05-24 EPSS Updated
2024-08-03 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-667: Improper Locking

CAPEC

References (10)

URL	Tag	Source
https://git.kernel.org/stable/c/59c6902a96b4439e07c25ef86a4593bea5481c3b	Vuln. Introduced
https://git.kernel.org/stable/c/dee1e2b18cf5426eed985512ccc6636ec69dbdd6	Vuln. Introduced
https://git.kernel.org/stable/c/3bf4bf54069f9b62a54988e5d085023c17a66c90	Vuln. Introduced
https://git.kernel.org/stable/c/c0deb027c99c099aa6b831e326bfba802b25e774	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/07191f984842d50020789ff14c75da436a7f46a9	2022-09-28
https://git.kernel.org/stable/c/9f267393b036f1470fb12fb892d59e7ff8aeb58d	2022-09-23
https://git.kernel.org/stable/c/5db17805b6ba4c34dab303f49aea3562fc25af75	2022-09-23
https://git.kernel.org/stable/c/99bc25748e394d17f9e8b10cc7f273b8e64c1c7e	2022-09-23
https://git.kernel.org/stable/c/321488cfac7d0eb6d97de467015ff754f85813ff	2023-04-05
https://git.kernel.org/stable/c/43626dade36fa74d3329046f4ae2d7fdefe401c6	2022-08-25

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.4.213 < 5.4.215 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.4.213 < 5.4.215"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.10.143 < 5.10.145 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.10.143 < 5.10.145"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.15.68 < 5.15.70 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.15.68 < 5.15.70"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.19.9 < 5.19.11 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.19.9 < 5.19.11"		en		Affected